Privacy Policy

Bodlos Consulting attaches great importance to protecting your personal data. When processing your data, we comply with the current provisions of the Austrian Data Protection Act (DSG), the General Data Protection Regulation (DSGVO) and the Telecommunications Act (TKG), as amended. Below you will find an explanation of how we process your personal data.


This data protection notice informs users about the nature, scope and purpose of the collection and use of personal data by Bodlos Consulting. It applies only to the content on our server and does not cover websites linked to our site.
Bodlos Consulting takes your privacy very seriously and treats your personal data confidentially and in accordance with the legal regulations. As new technologies and the constant development of this website may result in changes to this data protection declaration, we recommend that you read it again at regular intervals.
Definitions of the terms used (e.g. “personal data” or “processing”) can be found in Art. 4 DSGVO.


If you have any questions or concerns about this privacy statement, please send an e-mail to:

Bodlos Consulting
+43 664 3225088
or write to:
Bodlos Consulting
Herrengasse 1
9400 Wolfsberg

Person responsible for data processing

Responsible for the processing of personal data is:

Franz Bodlos MBA
Herrengasse 1
9400 Wolfsberg

Basis of data processing

Personal data is processed on the basis of legal authorisation pursuant to Art. 6 (1) (b) “performance of a contract or implementation of pre-contractual measures” DSGVO.
In addition, personal data may also be processed on the basis of a declaration of consent pursuant to Art. 6 (1) a “Consent” DSGVO.
On the website, data is processed exclusively on the basis of the legal provisions (DSG, DSGVO, TKG).
The use of analysis tools is based on Art. 6 para. 1 lit f “Legitimate Interest” DSGVO with the purpose of improving the website and measuring the success of online advertising.
The use of IT data security measures is also based on Art. 6 para. 1 lit f “Legitimate Interest” DSGVO. The legitimate interest in the use of data is the safeguarding of our own IT systems.

Personal data collected


Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal details, will only be used by us for the purpose stated in each case, stored securely and not passed on to third parties. The provider automatically collects and stores information on the web server such as the browser used, operating system, referring page, IP address, time of access, etc.. This data cannot be assigned to a specific person without checking other data sources and we do not evaluate this data further as long as there is no illegal use of our website.

Form data and comments

If you leave comments or form entries, the data entered and your IP addresses are stored. This is done for security purposes in case someone writes illegal content (insults, left- or right-wing extremist propaganda, hate postings, etc.). In this case, we are interested in the identity of the author.
Form data (e.g. from contact forms) are collected, processed and stored for the purpose of contacting you. This also includes the IP address. If you do not agree to this, please refrain from using the forms on the website.

Contacting us by e-mail or telephone

We process the data you provide when contacting us exclusively for the purpose of answering your enquiry. The collection of your data is necessary in order to process your enquiry. You provide us with this information voluntarily. We do not use any automated decision-making or profiling in this processing of your data.
We only store your data for the period of time necessary to fulfil the purpose. Beyond that, only the absolutely necessary data resulting from the applicable legal provisions or retention obligations will be processed.

Contractual relationship

Within the framework of customer administration, we process the personal data provided by you for the purpose of processing the contract.
This includes in particular:

  • Master and contact data (e.g. name, address, e-mail address, telephone number)
  • Order data
  • Financial data.

The personal data provided by you is necessary for the fulfilment of the contract or for the implementation of pre-contractual measures.
Within Bodlos Consulting, only those departments and thus employees receive your data who need them to fulfil contractual, legal and supervisory obligations as well as to protect legitimate interests.
Your personal data will be processed for the duration of the entire business relationship (from the initiation to the execution to the termination of a contract) as well as beyond that in accordance with the statutory retention and documentation obligations.
If no contract is concluded, the stored personal data will be processed for a maximum of one year.

Transmission of application documents

We process the application documents you send us for the purpose of processing your (unsolicited) application and checking your suitability for an advertised position, as well as for contacting you and keeping records. If we take you on as an employee, you will be informed separately about the associated processing of your data.
The data required to process your application will generally be processed for a period of six months after the end of the application process due to the applicable legal provisions. If you wish your application to be kept on record for a longer period, your written consent will be obtained in advance in accordance with Art. 6 Para. 1 lit a DSGVO. You can revoke your consent at any time by sending an e-mail to us.

Location of data processing

Your data will be processed within the EU and the European Economic Area.

Technical and organisational measures (TOMs)

The TOMs are implemented by Bodlos Consulting in accordance with the GDPR. They are continuously evaluated for feasibility and state of the art and, if necessary, improved and brought to a higher level of security and protection.

Disclosure of data breaches

We, Bodlos Consulting and thus the data controller, ensure that data mishaps are recognised at an early stage and, if necessary, reported to you and also to the supervisory authority (data protection authority) without delay, including the respective data categories that are affected.

Transfer of data

After you have commissioned us to do so, data will also be forwarded on an occasion-related basis, e.g. to our tax advisor, lawyer, insurance company, bank, collection agency, authorities and, in certain occasion-related cases, to the court. In addition, those commissioned by us will only receive your data which they require for the fulfilment of the order for the appropriate purpose. We contractually oblige named subcontractors to process your data only within the scope of the service provision and in compliance with the relevant provisions of the GDPR and to treat them confidentially.
We do not pass on your data to any other third parties, neither by sale or exchange nor by loan or in any other way, unless you give us the order to do so by means of consent.

Retention period of your data

We will retain the personal data we collect from you for as long as we have a reasonable business and/or legal need to do so and/or for as long as is necessary to fulfil the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (for example, for tax, legal, accounting or other purposes). If there is no reasonable business need to process your personal data, we will delete it within twelve months.


Our website is not intended for children under the age of 14. We do not knowingly collect personal data from such individuals. If you discover that a child has sent us personal data, please contact us immediately. If we discover that a child under the age of 14 has sent us personal information, we will take the necessary steps to delete that information immediately.

External Links

Our website and services may provide links to other websites via direct links or applications such as “share” or “like” buttons. Other websites may contain links to our Website or Services. We have no control over such websites or their privacy practices, which may differ from our privacy notice. We do not endorse or otherwise comment on external websites. The personal information you provide to third parties not affiliated with us is not covered by this privacy notice. We encourage you to read the privacy notices of such external websites, services and applications to understand how your information may be collected and used.


Cookies are used on the website or software installed on the server. Cookies are text files that receive information and provide you with advanced functionality. (e.g. spam protection check in the contact form – if activated.) Cookies only store the necessary information and cannot cause any damage to your computer. You can define the storage period of your cookie yourself in the browser profile and delete cookies on your computer yourself at any time. Cookies are technically necessary to guarantee the full functionality of this website at all times.

Google Maps privacy policy

We use Google Maps from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. By using the functions of this map, data is transmitted to Google. You can find out what data is collected by Google and what this data is used for at

Google Analytics privacy policy

We use Google Analytics from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on this website to statistically analyse visitor data. Google Analytics uses target-oriented cookies for this purpose. For more information on the terms of use and data protection, please visit

Deactivation of data collection by Google Analytics

Using the browser add-on to deactivate Google Analytics JavaScript (ga.js, ana-lytics.js, dc.js), website visitors can prevent Google Analytics from using their data. You can prevent the collection of data generated by the cookie and related to your use of the website by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link:
Google Analytics Data processing addendum
We have entered into a direct customer agreement with Google for the use of Google Analytics by accepting the “Data Processing Addendum” in Google Analytics. You can find out more about the Google Analytics Data Processing Addendum here: id=ad.

Google Analytics reports on demographic characteristics and interests

We have enabled advertising reporting features in Google Analytics. The demographic and interest reports contain information on age, gender and interests. This allows us to get a better picture of our users without being able to attribute this data to individual persons.

Google Fonts Privacy Policy

We use Google Fonts from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. Google Fonts are used without authentication and no cookies are sent to the Google Fonts API. If you have an account with Google, none of your Google account data will be transmitted to Google during the use of Google Fonts. Google only records the use of CSS and the fonts used and stores this data securely.

Facebook privacy policy

On this website we use functions of Facebook, a social media network of the company Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. You can find out which functions (social plug-ins) Facebook provides on LINK. By visiting our website, information may be transmitted to Facebook. If you have a Facebook account, Facebook can assign this data to your personal account. If you do not wish this to happen, please log out of Facebook. The privacy policy, what information Facebook collects and how they use it can be found at

Instagram privacy policy

We use functions of the social media network Instagram of the company Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA on our website. With the functions for embedding Instagram content (embed function), we can display images and videos. By calling up pages that use such functions, data (IP address, browser data, date and time, cookies) are transmitted to Instagram, stored and evaluated. If you have an Instagram account and are logged in, this data will be assigned to your personal account and the data stored in it. The privacy policy, which information Instagram collects and how they use it can be found at

Changes to this privacy notice

We will periodically revise and update this Privacy Notice in accordance with changing legal, technical and business developments. When we update this privacy notice, we will note the date of the last revision at the top of the notice. We encourage you to periodically review this privacy notice to stay informed about how we are protecting your personal information.


This disclaimer is to be regarded as part of the internet publication which you were referred from. If sections or individual terms of this statement are not legal or correct, the content or validity of the other parts remain uninfluenced by this fact.

Liability for the contents of this website

The contents of our website have been created with the utmost care. However, we cannot assume any liability for the correctness, completeness and up-to-dateness of the contents. As a service provider, we are responsible for our own content on these pages in accordance with general laws. However, we are not obliged to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information in accordance with general laws remain unaffected by this. However, liability in this regard is only possible from the point in time at which a concrete infringement of the law becomes known. If we become aware of any such infringements, we will remove the relevant content immediately.

Liability for links to third party websites

Our offer contains links to external websites. We have no influence on the content of these external websites. Therefore, we cannot assume any liability for these external contents. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal contents were not recognisable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete indications of a legal violation. If we become aware of any infringements of the law, we will remove such links immediately.


Bodlos Consulting, and thus the operator of this website, endeavours to respect the copyrights of others at all times, or to use its own works or works in the public domain. The contents and works created by Bodlos Consulting on this website are subject to copyright. Contributions by third parties are marked as such.
Duplication, processing, distribution and any kind of exploitation outside the limits of copyright require the written consent of the respective author or creator. Downloads and copies of this site are only permitted for private, non-commercial use.
The layout of this website, the graphics used as well as texts and images are protected by copyright. The copyright for published and self-created images, graphics etc. remains solely with the respective author or with Bodlos Consulting. These elements may not be reproduced, transmitted, made available, performed, presented, translated, edited or processed without the express written consent of Bodlos Consulting.

Your data protection rights

Duty to inform

Data subjects must be informed about the details of data processing and their rights (who/what/when/where/how/why).

Right to information

It must be possible to obtain information about which of the data subject’s data is stored or processed separately from the data of other persons.

Right of rectification

To avoid incorrect evaluations.
Right to erasure (“right to be forgotten”).
In the absence of necessity, consent and lawfulness. Personal data must also be deleted after expiry (e.g. after termination of a business relationship).

Right to restriction of processing

For the duration of audits or the protection of legal claims. Without deleting them, it must be possible to exclude data from processing.

Right to data transfer

Data relating to an individual must be transferred to other service providers and service suppliers on request. This must be done automatically or in a structured form.

Right to object

In the case of higher interests, a data subject may prohibit the processing of his or her data.

Right of complaint

If you believe that the processing of your data violates data protection law or your data protection rights have been violated in any other way, you can complain to the supervisory authority. In Austria, this is the data protection authority: